By the NMAP definition, unfiltered ports are the ones which cannot be determined to be open or closed since packet filtering prevents its probes from reaching the port. (ISBN 9780979958717 pag. 77)
...

I use Kali Linux and VMWare for testing some penetration techniques.
The problem is that when I scan ports with Nmap to my Windows IP "all ports are filtered". I know that the firewall is blocking the ...

I'm testing some vulnerabilities on a machine which has the port 22333 opened (it's used as the ssh port, and I can connect to it without any problem and the telned command get connected):
$ telnet ...

I need to scan large network which has 5000 IPs. I have limited time duration. I have done initial maths and concluded that, in a group of 4 individual has to perform 70 IP nmap scan.
Consider that I ...

I have a test network setup based on virtual machines. My host machine, a web server and the firewall is under the 192.168.0.0/24 network (gateway is 192.168.0.1); a server machine is located behind ...

How can I make nmap run the HTTP-scripts on ports that are unusual for HTTP, say TCP port 123? On something like nmap -n --script="http* ..." -p123 target nmap does nothing except to check that port ...

I'm trying to determine a servers IP address via ping and open ports/services by running an NMAP scan.
At work, when I ping my website/server, I get a response from 172.16.XX.X
If I run an NMAP scan, ...

Having trouble firewalking. I am trying to determine all the open ports on my firewall/gateway. Here is my lab network diagram:
(Skip to the bottom of the following explanation for a direct list of ...

I am new to NMAP but I was using it to troubleshoot some issues I have been having. I ran a scan on a device and I know the device runs some sort of Linux or Ubuntu OS and I was attempting to figure ...

Can anyone tell me if proxychains-ng has limitations to work with nmap? I found that it does not work well when using -sV option in nmap. (stop at "Initiating NSE at ..." and never finish the scan) ...

I'm running nmap 6.47 on Windows 7 and am trying to run the ssl-ccs-injection.nse script. After getting an error, I ran it with the -d (debug) option and the error in the subject is what showed up. I ...

I have searched the web a numerous times but haven't found an explicit answer to my question.
I've studied (at school and on my own) computer networks for 2 years, doing active programming for 4 years ...

I am doing some research and I need a very quick way to scan for open ports on a single machine. To provide some context, I know that my machine will have a port open waiting for UDP packets for about ...

Does anyone know if PathPing or NMAP can ping or scan from predefinded source IPs?
I am checking connectivity from agents on remote hosts to a destination site from my host.
Is there a switch or tool ...

I understand nmap by default scans the top 1k 'most common' ports (-F reduces to 100)
I understand it gets these 'most common' ports based on the nmap-services file, specifically the frequency (3rd ...

I just read this example and explanation (below) in the OReilly book Security Power Tools (2007) in section 6.3 that is written by the creator of Scapy, Philippe Biondi. I think the example is very ...

Ive been recently trying to lock down my network at home and suspect
that someone has hacked my linksys router because port 3128 seems to be
open through the router and I have no knowledge setting or ...

I recently discovered nmap and pointed it at my router out of curiosity. It found that ports 3333 and 5555 are open but doesn't recognise either service. I investigated and found:
I can successfully ...

When running an NMAP scan of my internal network (192.168.1.0/24) from my Mac, NMAP sees all hosts as live.
It also believes there is a port 80 http service running on every IP when I do not have 254 ...

I have currently been working in an environment where I am connected to a WPA2-Enterprise network requiring me to enter my username and password for the network whenever I connect. I have been asked ...

I have a newline separated list of domains that I would like to perform an arbitrary nmap scan on (e.g. aggressive, syn) and I would like to output a boolean that indicates whether or not any ports ...